DMACERT-Bund21 Apr 2026

[NEU] [hoch] Kemp LoadMaster und Progress Software MOVEit WAF: Mehrere Schwachstellen

Digital Markets Act. Sourced from CERT-Bund, summarised by Matproof.

AI Analysis

What changed and what to do.

The German Federal Office for Information Security (BSI) has published a high-priority security advisory concerning multiple vulnerabilities in Kemp LoadMaster and Progress Software MOVEit WAF products. These vulnerabilities, if exploited, could allow attackers to compromise the confidentiality, integrity, and availability of affected systems.

Organizations across all sectors using these specific web application firewall and load balancing solutions from Kemp and Progress Software are affected. The advisory is categorized under the Digital Markets Act (DMA) framework, indicating its relevance for entities providing core platform services, though the technical risk extends to all users of the named products.

Compliance teams should immediately identify any use of the affected software versions within their organization. The next critical step is to consult the provided BSI advisory for detailed technical indicators and to apply the security updates or mitigation measures issued by the vendors without delay. This action is necessary to maintain compliance with general security obligations under regulations like the NIS2 Directive and the DORA.

View original at CERT-Bund →

This summary is AI-generated for orientation purposes. For regulatory action, always consult the original source linked above.

More DMA updates

Latest in Digital Markets Act.

EU Parliament30 Apr 2026

Press release - Digital Markets Act: MEPs want stronger enforcement amid external pushback

On 30 April 2026, the European Parliament issued a press release signalling stronger enforcement of the Digital Markets Act (DMA) amid external pushback from major tech firms. While no new…

EU Parliament24 Apr 2026

Press release - EU Institutions agree Roadmap to achieve “One Europe, one Market” by end of 2027

On 24 April 2026, the European Parliament, Council, and Commission agreed on a political roadmap under the Digital Markets Act (DMA) to achieve a fully integrated digital single market by the end of…

CERT-Bund15 Apr 2026

[NEU] [mittel] Podman HyperV Machine: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit Administratorrechten

A new vulnerability has been published concerning Podman's HyperV machine feature. This flaw, tracked within the CERT-Bund advisory WID-SEC-2026-1115, could allow an attacker to execute arbitrary…

CERT-Bund8 Apr 2026

[NEU] [hoch] Podman Desktop: Schwachstelle ermöglicht Denial of Service und Offenlegung von Informationen

A new high-severity vulnerability has been published concerning Podman Desktop, a container management tool. The flaw, identified as WID-SEC-2026-0992 by the German Federal Office for Information…

← Back to all updates

Live regulatory monitoring

Never miss a compliance update.

Get weekly digests of DORA, NIS2, GDPR, MaRisk, and ISO 27001 changes — straight to your inbox. Free.

No spam. Weekly digest only. Unsubscribe anytime.

DORANIS2GDPRMaRiskISO 27001

Map this to your controls

Connect regulatory changes to your compliance work.

Matproof maps every regulator update directly to your controls and surfaces the ones that affect your organisation — across 21 frameworks.

Book a Demo Browse all updates